Information Security Analyst
About The Position
Foxhole Technology provides robust cybersecurity and IT support capabilities for federal civilian and defense agencies. A recognized leader in navigating technology and security challenges, Foxhole delivers mission-focused innovations to answer evolving and complex needs. Our talented employee-owners provide agile, scalable services and solutions that solve operational gaps, operate critical systems, and protect and secure the enterprise – across the organization and around the world. Foxhole is seeking a qualified Information Security Analyst. The ideal Information Security Analyst will have strong collaboration and communication skills to support our government customers. This position plays a critical role in supporting all facets of information assurance, system security, and compliance across the enterprise.
Requirements
- Active Secret Clearance
- 3+ years of experience as an information security analyst, ISSO, or similar role
- Knowledge and understanding of DoD and NIST RMF process
- Experience in system accreditation, security assessments, and security engineering within the system development lifecycle
- Demonstrated ability to develop security artifacts, POAMs, Security Plans, CONOPS, etc.
- Ability to work on multiple documents under tight deadlines
- Highly organized, proactive, and collaborative
- Must have excellent interpersonal, verbal, and written communication skills
- The ability to work independently to ensure tasks are complete
Nice To Haves
- Bachelor’s (BS) degree in relevant field – strongly preferred but not required
- Certifications such as Security+, or CISSP, CISM, or similar cert is preferred
- Familiarity with security tools and frameworks such as ACAS, Nessus, cloud-based scanning technologies, etc.
- Experience supporting FedRAMP accreditations is a plus
- Knowledge of computer network defense process and procedures
Responsibilities
- Maintain and execute the Information Security Plan
- Categorize and assign security controls in Enterprise Mission Assurance Support Service (eMASS)
- Create, update, and manage Assessment & Authorization (A&A) packages in eMASS
- Coordinate and track inherited security controls within eMASS
- Oversee Ports, Protocols, and Services Management (PPSM)
- Support processes for achieving and maintaining Authority to Operate (ATO) and Conditional ATO (C-ATO)
- Ensure compliance with Security Technical Implementation Guides (STIGs) and Information Assurance Vulnerability Alerts (IAVAs)
- Respond to and manage cybersecurity incidents in coordination with both internal and external teams
- Conduct vulnerability scanning and compliance reviews using Assured Compliance Assessment Solution (ACAS)
- Oversee compliance activities related to Continuous Monitoring (ConMon) and Risk Management Framework (RMF) scoring
- Develop and maintain system profiles, security plans, and artifacts within eMASS
- Research, analyze, and stay up to date on the latest IT security trends and threats
- Prepare detailed reports on security breaches, incident investigations, and overall system security performance
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
11-50 employees
